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IN THE claims: 

1 1 . (Previously Presented) A method of providing access to a server in an 

2 arrangement that includes at least one device that serves as a fire^vall having a protected 

3 side and an unprotected side, a first proxy adapted to allow clients on the unprotected side 

4 of the firewall to gain direct access thereto, and a second proxy adapted to allow said 

5 server, on the protected side of the firewall, to gain direct access thereto and to not allow 

6 said clients direct access thereto comprising the steps of: 

7 receiving at the first proxy a connection request from a client of said clients; 

8 sending said connection request to the second proxy through said firewall, over a 

9 control channel previously established by a second proxy and controlled by the second 

10 proxy; 

1 1 authenticating the client; 

12 when the client is authenticated, said second proxy establishing a data connection 

1 3 with said first proxy, through said firewall, with the data connection adapted to forward 

1 4 requests of said client to said second proxy, where the data connection is distinct fi-om the 

1 5 control channel 

1 2. (Previously Presented) The method of claim 1 further comprising the step of 

2 receiving a requested resource at the second proxy from the server and using the 

3 established data connection between the second proxy and the first proxy to forward the 

4 requested resource to the client. 

1 3. (Original) The method of claim 2 wherein the resource is a document 

2 containing hyperlinks to other resources. 

1 4, (Original) The method of claim 3 wherein the second proxy translates the 

2 hyperlinks in the document into references directed to and interpreted by the second 

3 proxy. 

1 5. (Original) The method of claim 3 wherein the document is a Web page. 

1 6. (Previously Presented) The method of claim 1 wherein the data connection 

2 uses a secure communication protocol. 

2 
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1 1. (Previously Presented) The method of claim 6 wherein the secure 

2 communication protocol is SSL. 

1 8. (Original) The njethod of claim 1 wherein the client is a browser and the 

2 server is a Web server. 

1 9, (Original) The method of claim 1 wherein the client is authenticated using a 

2 password mechanism. 

1 1 0. (Original) The method of claim 9 wherein the client is authenticated using a 

2 one-time password mechanism. 

1 11 - 13. (Canceled) . 

1 14. (Previously Presented) The method of claim 1 further comprising the step of 

2 receiving at said second proxy, in response to a request for a resource from said second 

3 proxy, said requested resource from the server inside the firewall and using the 

4 established connection between the second proxy and the client to forward the requested 

5 resource to the client. 

1 1 5, (Previously Presented) The method of claim 1 further comprising the step of 

2 receiving from said first proxy, at said second proxy, a request for a resource of the 

3 server. 

1 16. (Previously Presented) The method of claim 1 wherein said connection 

2 request comprises a URL, the method further comprising said second proxy executing the 

3 steps of 

4 translating said URL to a URL that corresponds to a URL of a server inside said 

5 firewall; and 

6 establishing a connection with said URL. 

1 17. (Previously Presented) The method of claim 1 wherein the client is 

2 authenticated via said control channel using a password mechanism. 

3 
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1 18. (Previously Presented) The method of claim I wherein said control channel 

2 is maintained by sending a command that requests a response, over said control channel, 

3 at intervals that insure a silence period of not more than a preselected value, 

1 19. (Previously Presented) The method of claim 1 wherein said control chaxmel 

2 is adapted to carry a limited number of different messages. 

1 20. (Previously Presented) The method of claim 1 wherein said control channel 

2 is adapted to carry messages from a set that consists of 

3 a message sent by said second proxy to establish said control channel, 

4 a message sent by said first proxy to request establishment of said data 

5 connection, 

6 a hailing message that expects a reply, and 

7 a reply message that acknowledges said hailing message. 

1 21. (Previously Presented) The method of claim 1 said step of establishing said 

2 data connection is followed by a step of said second proxy, sending a message to said first 

3 proxy, over said data connection, to inform said first proxy of the establishment of said 

4 data connection. 

5 22. (Previously Presented) The method of claim 1 wherein said control channel 

6 is maintained by periodically one of the proxies sending a command that requests a 

7 response from the other of said proxies. 

8 23. (Canceled) . 
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